Rick19

In ieder geval bedankt voor alles, het probleem is bij deze opgelost Rick

Hoi, er is inderdaad verbetering , bedankt voor dat! Alleen mijn internet browser start nog traag op, ik gebruik firefox, zou dat ermee te maken kunnen hebben?

Zat inderdaad erg vol zag ik :-( Bij deze het volledige logje.. Malwarebytes' Anti-Malware 1.37 Database versie: 2271 Windows 5.1.2600 Service Pack 3 13-6-2009 21:14:25 mbam-log-2009-06-13 (21-14-24).txt Scan type: Volledige Scan (C:\|D:\|E:\|) Objecten gescand: 295919 Verstreken tijd: 1 hour(s), 33 minute(s), 14 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 4 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 11 Bestanden geïnfecteerd: 626 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: HKEY_LOCAL_MACHINE\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\ErrorFix (Rogue.ErrorFix) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\ErrorFix (Rogue.ErrorFix) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: c:\documents and settings\Rick\Application Data\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080 (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290 (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370 (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\Application Data\ErrorFix (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\QuarantineW (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580 (Rogue.ErrorFix) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: c:\documents and settings\Rick\application data\RegTool\spy_ignore.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\CURRENT_USER (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\DEFAULT (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\SAM (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\SECURITY (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\SOFTWARE (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Backups\2009-05-22 17-59-080\SYSTEM (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Logs\2009-05-22 14-18-120.log (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Logs\2009-05-22 17-54-130.log (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\Logs\2009-05-22 18-10-450.log (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-144.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-145.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-146.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-147.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-148.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-149.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-150.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-151.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-152.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-153.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-154.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-155.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-156.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-157.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-158.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-159.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-160.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-161.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-162.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-163.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-164.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-165.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-166.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-167.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-168.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-169.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-170.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-171.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-172.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-173.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-174.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-175.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-176.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-177.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-178.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-179.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-180.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-181.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-182.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-183.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-184.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-185.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-186.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-187.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-188.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-189.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-190.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-191.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-192.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-193.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-194.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-195.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-196.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-197.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-198.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-199.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-200.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-201.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-202.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-203.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-204.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-205.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-206.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-207.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-208.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-209.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-210.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-211.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-212.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-213.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-214.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-215.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-216.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 14-38-290\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file0.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file1.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file10.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file11.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file12.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file13.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file14.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file15.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file16.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file17.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file18.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file19.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file2.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file20.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file21.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file22.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file23.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file24.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file25.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file26.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file27.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file28.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file29.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file3.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file30.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file31.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file32.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file33.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file34.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file35.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file36.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file4.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file5.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file6.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file7.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file8.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\file9.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-144.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-145.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-146.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-147.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-148.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-149.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-150.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-151.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-152.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-153.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-154.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-155.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-156.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-157.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-158.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-159.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-160.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-161.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-162.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-163.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-164.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-165.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-166.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-167.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-168.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-169.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-170.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-171.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-172.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-173.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-174.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-175.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-176.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-177.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-178.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-179.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-180.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-181.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-182.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-183.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-184.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-185.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-186.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-187.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-188.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-189.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-190.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-191.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-192.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-193.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-194.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-195.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-196.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-197.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-198.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-199.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-200.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-201.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-202.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-203.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-204.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-205.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-206.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-207.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-208.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\RegTool\quarantinew\2009-05-22 18-05-370\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\resultsw.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs\2009-03-21 08-58-000.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs\2009-03-21 12-00-000.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs\2009-03-21 12-00-010.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs\2009-03-21 16-22-020.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\Logs\2009-03-21 16-24-420.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-100.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-101.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-102.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-103.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-104.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-105.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-106.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-107.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-108.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-109.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-110.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-111.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-112.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-113.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-114.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-115.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-116.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-117.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-118.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-119.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-120.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-121.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-122.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-123.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-124.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-125.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-126.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-127.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-128.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-129.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-130.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-131.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-132.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-133.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-134.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-135.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-136.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-137.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-138.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-139.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-140.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-141.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-142.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-143.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-22.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-23.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-24.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-25.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-28.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-29.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-30.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-31.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-32.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-33.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-34.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-35.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-36.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-37.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-38.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-39.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-40.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-41.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-44.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-45.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-46.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-47.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-48.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-50.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-51.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-52.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-53.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-54.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-55.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-56.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-57.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-58.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-60.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-61.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-62.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-63.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-64.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-65.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-66.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-67.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-68.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-69.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-70.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-71.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-72.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-73.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-74.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-75.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-76.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-77.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-78.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-79.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-80.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-81.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-82.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-83.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-84.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-85.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-86.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-87.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-88.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-89.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-90.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-91.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-92.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-93.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-94.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-95.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-96.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-97.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-98.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. c:\documents and settings\Rick\application data\ErrorFix\quarantinew\2009-03-21 09-11-580\regb-99.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.

Bedankt voor de reactie, bij deze de 2 logjes... Malwarebytes' Anti-Malware 1.37 Database versie: 2271 Windows 5.1.2600 Service Pack 3 13-6-2009 21:14:25 mbam-log-2009-06-13 (21-14-24).txt Scan type: Volledige Scan (C:\|D:\|E:\|) Objecten gescand: 295919 Verstreken tijd: 1 hour(s), 33 minute(s), 14 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 4 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 11 Bestanden geïnfecteerd: 626 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:21:10, on 13-6-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\LightScribe\LSSrvc.exe c:\Program Files\Matrox Graphics Inc\PowerDesk\Services\Matrox.PowerDesk.Services.exe C:\WINDOWS\system32\mgabg.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Ziggo\Common\RaUI.exe C:\Program Files\BitTorrent\bittorrent.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Matrox Centering Service - Matrox Graphics Inc. - c:\Program Files\Matrox Graphics Inc\PowerDesk\Services\Matrox.PowerDesk.Services.exe O23 - Service: MGABGEXE - Matrox Graphics Inc. - C:\WINDOWS\system32\mgabg.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- End of file - 5537 bytes

oke' bedankt, ik wacht het rustig af.

Hallo, Zou iemand mijn logje willen bekijken? Mijn pc is nogal traag de laatste tijd. :s bvd. Rick Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:31:06, on 13-6-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe c:\Program Files\Matrox Graphics Inc\PowerDesk\Services\Matrox.PowerDesk.Services.exe C:\WINDOWS\system32\mgabg.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Ziggo\Common\RaUI.exe C:\Program Files\BitTorrent\bittorrent.exe C:\Program Files\AVG\AVG8\avgtray.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL O9 - Extra button: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Matrox Centering Service - Matrox Graphics Inc. - c:\Program Files\Matrox Graphics Inc\PowerDesk\Services\Matrox.PowerDesk.Services.exe O23 - Service: MGABGEXE - Matrox Graphics Inc. - C:\WINDOWS\system32\mgabg.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- End of file - 5987 bytes

De starttijd van de computer blijft hetzelfde :-( Als ik hem start, dan komt het welkomstscherm en dat verloopt soepel allemaal, maar als ie dan overgaat naar mijn desktop is ie erg traag, hij laad dan de schermafbeelding in en het duurt ongeveer 5 a 10 minuten voordat ie de desktop icons laad, als die geladen zijn en zichtbaar, dan is mijn menubalk ook nog eens 10 minuten bezig om alles te laden. Als ik dan op een proramma klik om te openen verloopt dat erg traag en duurt meestal een paar minuten voordat ie opent. Zou er misschien wat verkeerds zitten in mijn startup REGISTRY?? Ik hoop dat het allemaal een beetje duidelijk is uitgelegd voor jullie!! Groetjes, Rick

@storekeeper Bedankt voor de tip, ik ga het meteen even proberen, het is echt drama dat de pc zo traag is en soms gewoon geen bestanden wil openen!! :-( Ik ga jouw tip ook even proberen, ik laat het je meteen weten als het gelukt is!! BVD Rick

Hierbij de combo log... ComboFix 09-03-29.02 - Rick Charles 2009-03-30 9:34:33.5 - FAT32x86 Gestart vanuit: c:\documents and settings\Rick Charles\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\Rick Charles\Bureaublad\CFScript.txt..txt . (((((((((((((((((((( Bestanden Gemaakt van 2009-02-28 to 2009-03-30 )))))))))))))))))))))))))))))) . 2009-03-22 22:02 . 2009-03-22 22:02 <DIR> d-------- c:\program files\Error Repair Professional 2009-03-22 12:57 . 2009-03-22 12:57 <DIR> d-------- c:\program files\Ss-Tools 2009-03-22 12:42 . 2009-03-22 12:42 <DIR> d-------- c:\program files\RegScrubXP 2009-03-21 21:06 . 2009-03-21 21:06 <DIR> d-------- c:\program files\Free Window Registry Repair 2009-03-21 20:14 . 2009-03-21 20:14 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\ErrorFix 2009-03-20 18:42 . 2009-03-13 23:53 786,152 --a------ C:\SMS2003-SP1-KB888987-X86-ENU.exe 2009-03-17 23:10 . 2009-03-17 23:10 <DIR> dr------- C:\UDC Output Files 2009-03-16 19:30 . 2009-03-16 19:30 <DIR> d-------- c:\program files\Common Files\HP 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\program files\PC Drivers HeadQuarters 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2009-03-16 17:21 . 2009-03-16 17:21 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\GetRightToGo 2009-03-12 22:56 . 2009-03-12 22:56 <DIR> d-------- c:\program files\DENDA 2009-03-10 23:02 . 2009-03-10 23:02 <DIR> d-------- c:\program files\XP Repair Pro 2007 2009-03-10 20:32 . 2009-03-10 20:33 <DIR> d-------- c:\temp\HP_WebRelease 2009-03-09 12:00 . 2009-03-09 12:00 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\BoostXP2 2009-03-04 23:25 . 2009-03-04 23:25 <DIR> d-------- c:\program files\Systweak BoostXP2 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\program files\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\All Users\Application Data\DAEMON Tools Pro 2009-02-27 11:58 . 2009-02-27 11:58 <DIR> d-------- c:\documents and settings\All Users\Application Data\Nero 2009-02-27 11:52 . 2009-02-27 11:52 <DIR> d-------- c:\program files\Nero 2009-02-24 00:40 . 2009-02-24 00:40 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware 2009-02-24 00:40 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2009-02-24 00:40 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2009-02-24 00:18 . 2009-02-24 00:18 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Malwarebytes 2009-02-24 00:18 . 2009-02-24 00:18 <DIR> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-02-23 23:23 . 2009-02-23 23:23 <DIR> d-------- c:\program files\Common Files\PC Tools 2009-02-23 23:03 . 2009-02-23 23:03 <DIR> d-------- c:\program files\Trend Micro 2009-02-23 22:49 . 2009-02-23 22:49 <DIR> d-------- c:\program files\Enigma Software Group 2009-02-23 12:29 . 2009-02-23 12:29 <DIR> d-------- c:\documents and settings\Rick Charles\eee 2009-02-23 12:26 . 2009-02-23 12:26 351,275 --a------ c:\windows\system32\rtcshares.exe 2009-02-23 12:26 . 2009-02-23 12:26 186 --a------ c:\windows\system32\c.bat 2009-02-22 21:22 . 2009-02-10 17:05 952,832 --a------ c:\windows\system32\javac.exe 2009-02-21 12:19 . 2009-02-21 12:19 <DIR> d-------- c:\program files\iColorFolder 2009-02-20 09:38 . 2009-02-20 09:38 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Azureus 2009-02-20 09:38 . 2009-02-20 09:38 <DIR> d-------- c:\documents and settings\All Users\Application Data\Azureus 2009-02-17 20:27 . 2009-02-17 20:27 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\ImgBurn 2009-02-17 20:23 . 2009-02-17 20:23 <DIR> d-------- c:\program files\ImgBurn 2009-02-17 19:20 . 2009-02-17 19:20 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\ACD Systems 2009-02-17 19:19 . 2009-02-17 19:19 <DIR> d-------- c:\program files\Common Files\ACD Systems 2009-02-17 19:19 . 2009-02-17 19:19 <DIR> d-------- c:\documents and settings\All Users\Application Data\ACD Systems 2009-02-15 09:53 . 2009-02-15 09:53 717,296 --a------ c:\windows\system32\drivers\sptd.sys 2009-02-09 21:32 . 2009-02-09 21:32 <DIR> d-------- c:\documents and settings\All Users\Application Data\Vso 2009-02-09 21:29 . 2009-02-09 21:29 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Vso 2009-02-09 21:29 . 2009-02-09 21:29 47,360 --a------ c:\windows\system32\drivers\pcouffin.sys 2009-02-09 21:29 . 2009-02-16 15:36 47,360 --a------ c:\documents and settings\Rick Charles\Application Data\pcouffin.sys 2009-02-09 21:28 . 2009-02-09 21:28 <DIR> d-------- c:\program files\VSO 2009-02-09 13:47 . 2009-02-09 13:47 <DIR> d-------- c:\windows\PrimoPDF4 2009-02-09 13:47 . 2009-02-09 13:47 <DIR> d-------- c:\program files\activePDF 2009-02-09 13:47 . 2006-12-11 22:12 176,235 --a------ c:\windows\system32\Primomonnt.dll 2009-02-05 22:42 . 2009-02-05 22:43 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Locktime 2009-02-05 22:42 . 2009-02-05 22:42 <DIR> d-------- c:\documents and settings\All Users\Application Data\Locktime 2009-02-04 18:46 . 2009-02-04 18:46 <DIR> d-------- c:\documents and settings\Rick Charles\Tracing 2009-02-04 18:43 . 2009-02-04 18:43 <DIR> d-------- c:\program files\Windows Live SkyDrive 2009-02-04 18:43 . 2009-02-04 18:43 <DIR> d-------- c:\program files\Microsoft 2009-02-03 20:59 . 2009-02-03 20:59 <DIR> d-------- c:\program files\Easy Computing 2009-02-03 19:16 . 2009-02-03 19:16 <DIR> d-------- c:\program files\Common Files\Windows Live 2009-02-02 22:25 . 2009-02-02 22:25 <DIR> d-------- c:\documents and settings\Rick Charles\.dvdcss 2009-02-02 19:13 . 2009-02-02 19:13 <DIR> d-------- c:\program files\The FilmMachine 2009-02-02 18:51 . 2009-02-02 18:51 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\AVS4YOU 2009-02-02 18:51 . 2009-02-02 18:51 <DIR> d-------- c:\documents and settings\All Users\Application Data\AVS4YOU 2009-02-02 18:43 . 2009-02-02 18:43 <DIR> d-------- c:\program files\Common Files\AVSMedia 2009-02-02 18:43 . 2009-02-02 18:43 <DIR> d-------- c:\program files\AVS4YOU 2009-02-02 18:10 . 2009-02-02 18:10 <DIR> d-------- C:\Softpaq 2009-02-02 14:17 . 2009-02-02 14:17 <DIR> d-------- c:\windows\system32\temp 2009-02-02 11:48 . 2009-02-02 11:48 <DIR> d-------- c:\program files\Pegasys Inc 2009-02-02 10:56 . 2009-02-02 10:56 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Ahead 2009-02-02 10:54 . 2008-08-13 10:22 24,576 --------- c:\windows\system32\msxml3a.dll 2009-02-02 10:42 . 2009-02-02 10:42 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Uniblue 2009-02-02 10:35 . 2009-02-02 10:35 <DIR> d-------- c:\documents and settings\All Users\Application Data\Ahead 2009-02-01 14:19 . 2009-02-01 14:19 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\Any Video Converter 2009-02-01 14:09 . 2009-02-01 14:09 <DIR> d-------- c:\program files\Burn4Free Toolbar 2009-02-01 13:23 . 2009-02-01 13:23 <DIR> d-------- c:\program files\VideoLAN 2009-02-01 13:17 . 2009-02-01 13:17 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\CyberLink 2009-02-01 11:05 . 2009-02-01 11:05 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\BitTorrent 2009-02-01 10:53 . 2009-02-01 10:53 <DIR> d-------- c:\program files\BitTorrent 2009-02-01 10:53 . 2009-02-01 10:53 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\DNA . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-03-11 15:36 410,984 ----a-w c:\windows\system32\deploytk.dll 2009-01-16 19:31 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll 2008-12-19 08:13 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe 2008-12-19 08:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe 2008-12-19 04:25 634,024 ----a-w c:\windows\system32\dllcache\iexplore.exe 2008-12-19 04:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll 2008-12-11 09:57 333,952 ------w c:\windows\system32\dllcache\srv.sys 2008-12-02 20:37 49,480 ----a-w c:\windows\system32\sirenacm.dll 2008-11-03 11:51 24,632 ----a-w c:\documents and settings\Rick Charles\Application Data\GDIPFONTCACHEV1.DAT 2004-08-04 03:00 94,784 --sh--w c:\windows\twain.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_16.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_32.dll 2008-04-14 17:02 50,688 --sh--w c:\windows\twain_32.dll 2008-04-14 17:02 343,040 --sha-w c:\windows\system32\msvcrt.dll 2008-04-14 17:02 84,992 --sha-w c:\windows\system32\olepro32.dll 2008-04-14 17:03 12,288 --sh--w c:\windows\system32\regsvr32.exe 2008-04-14 17:02 551,936 --sh--w c:\windows\system32\oleaut32.dll 2008-04-14 17:02 413,696 --sha-w c:\windows\system32\msvcp60.dll 2008-04-14 17:02 57,344 --sh--w c:\windows\system32\msvcirt.dll 2008-04-14 17:02 1,028,096 --sha-w c:\windows\system32\mfc42.dll 2008-09-26 07:33 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Geschiedenis\History.IE5\MSHist012008092620080927\index.dat . ((((((((((((((((((((((((((((( SnapShot@2009-03-29_13.50.27.62 ))))))))))))))))))))))))))))))))))))))))) . + 2005-10-20 18:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE - 2009-03-29 10:22:38 16,384 ----a-w c:\windows\Temp\Perflib_Perfdata_60c.dat + 2009-03-30 06:57:44 16,384 ----a-w c:\windows\Temp\Perflib_Perfdata_60c.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-11-07 21633320] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-28 68856] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-02-01 342848] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-10-24 1451264] "Zesko_McciTrayApp"="c:\program files\Thuishelp\Zesko\Thuishelp.exe" [2008-04-14 1455104] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-11 148888] "AGRSMMSG"="AGRSMMSG.exe" [2005-03-04 c:\windows\AGRSMMSG.exe] "SoundMan"="SOUNDMAN.EXE" [2004-05-14 c:\windows\SOUNDMAN.EXE] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360] Ziggo Wireless Utility.lnk - c:\program files\Ziggo\Common\RaUI.exe [2009-01-21 647168] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.ACDV"= ACDV.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0SsiEfr.e [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2008-12-02 22:38 3882312 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2007-03-01 15:57 153136 c:\program files\Common Files\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\TinaSoft\\Easy Cafe Client\\client.exe"= "c:\\Program Files\\Messenger\\MSMSGS.EXE"= "c:\\Program Files\\SmartFTP\\SmartFTP.exe"= "c:\\StubInstaller.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6160:TCP"= 6160:TCP:Seagull Driver Networking R3 adiusbae;USB ADSL LAN Adapter; [x] R3 hitmanpro3;Hitman Pro 3 Support Driver; [x] R3 RTL8187B;Wireless Network USB Adapter 54g WL-168v1.004;c:\windows\system32\DRIVERS\RTL8187B.sys [2007-07-18 264576] S1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-10-24 34824] S2 BCMNTIO;BCMNTIO;c:\progra~1\CHECKIT\DIAGNO~1\BCMNTIO.sys [2004-03-05 3744] S2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-10-24 468224] S2 Esdpdx01;Esdpdx01;c:\windows\system32\Drivers\ESDPDX01.SYS [2003-01-19 95449] S2 MAPMEM;MAPMEM;c:\progra~1\CHECKIT\DIAGNO~1\MAPMEM.sys [2004-03-05 3904] S3 PAC207;Trust WB-1200p Mini Webcam;c:\windows\system32\DRIVERS\pfc027.sys [2005-02-24 162176] --- Andere Services/Drivers In Geheugen --- *Deregistered* - AegisP *Deregistered* - AFD *Deregistered* - ALG *Deregistered* - Aspi32 *Deregistered* - AudioSrv *Deregistered* - audstub *Deregistered* - BCMNTIO *Deregistered* - Beep *Deregistered* - Browser *Deregistered* - Cdfs *Deregistered* - CryptSvc *Deregistered* - DcomLaunch *Deregistered* - Dhcp *Deregistered* - Dnscache *Deregistered* - eamon *Deregistered* - easdrv *Deregistered* - ekrn *Deregistered* - epfwtdir *Deregistered* - ERSvc *Deregistered* - Esdpdx01 *Deregistered* - EventSystem *Deregistered* - Fastfat *Deregistered* - FastUserSwitchingCompatibility *Deregistered* - Fips *Deregistered* - FltMgr *Deregistered* - Ftdisk *Deregistered* - Gpc *Deregistered* - helpsvc *Deregistered* - HTTP *Deregistered* - HTTPFilter *Deregistered* - ImapiService *Deregistered* - IpNat *Deregistered* - IPSec *Deregistered* - JavaQuickStarterService *Deregistered* - KSecDD *Deregistered* - lanmanserver *Deregistered* - lanmanworkstation *Deregistered* - LightScribeService *Deregistered* - LmHosts *Deregistered* - MAPMEM *Deregistered* - McciCMService *Deregistered* - MMRTKRNL *Deregistered* - mnmdd *Deregistered* - MountMgr *Deregistered* - MRxDAV *Deregistered* - MRxSmb *Deregistered* - Msfs *Deregistered* - mssmbios *Deregistered* - Mup *Deregistered* - NDIS *Deregistered* - NdisTapi *Deregistered* - NdisWan *Deregistered* - NDProxy *Deregistered* - NetBIOS *Deregistered* - NetBT *Deregistered* - Netman *Deregistered* - Nla *Deregistered* - NMIndexingService *Deregistered* - Npfs *Deregistered* - Null *Deregistered* - PartMgr *Deregistered* - ParVdm *Deregistered* - PCIIde *Deregistered* - Pml Driver HPZ12 *Deregistered* - PolicyAgent *Deregistered* - PptpMiniport *Deregistered* - ProtectedStorage *Deregistered* - PSched *Deregistered* - RasAcd *Deregistered* - Rasl2tp *Deregistered* - RasMan *Deregistered* - RasPppoe *Deregistered* - Raspti *Deregistered* - Rdbss *Deregistered* - RDPCDD *Deregistered* - RpcSs *Deregistered* - SamSs *Deregistered* - Schedule *Deregistered* - seclogon *Deregistered* - SENS *Deregistered* - SharedAccess *Deregistered* - ShellHWDetection *Deregistered* - sisidex *Deregistered* - Spooler *Deregistered* - sptd *Deregistered* - sr *Deregistered* - srservice *Deregistered* - Srv *Deregistered* - SSDPSRV *Deregistered* - STI Simulator *Deregistered* - stisvc *Deregistered* - swenum *Deregistered* - TapiSrv *Deregistered* - Tcpip *Deregistered* - TermDD *Deregistered* - TermService *Deregistered* - Themes *Deregistered* - TrkWks *Deregistered* - Update *Deregistered* - upnphost *Deregistered* - VgaSave *Deregistered* - VolSnap *Deregistered* - W32Time *Deregistered* - Wanarp *Deregistered* - WebClient *Deregistered* - winmgmt *Deregistered* - WMPNetworkSvc *Deregistered* - wscsvc *Deregistered* - wuauserv . Inhoud van de 'Gedeelde Taken' map 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix\ErrorFix.exe [] 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix [] . . ------- Bijkomende Scan ------- . uStart Page = Google uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 Trusted Zone: ziggo.nl\thuishelp FF - ProfilePath - c:\documents and settings\Rick Charles\Application Data\Mozilla\Firefox\Profiles\9p24h9y2.default\ FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll . ************************************************************************** catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-03-30 09:36:52 Windows 5.1.2600 Service Pack 3 FAT NTAPI scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\S-1-5-21-4070995279-1538417202-2915903831-1008\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,42,50,bf,99,fa, 30,c1,61,c8,28,51,af,b0,29,a3,98,a2,9e,03,09,e9,76,f6,f2,e2,63,26,f1,3f,c8,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "bca643cdc5c2726b20d2ecedcc62c59b"=hex:6a,9c,d6,61,af,45,84,18,c8,66,6a,d7,5e, 03,9a,91,71,3b,04,66,8b,46,0d,96,d2,3c,51,3d,7c,27,4d,68,6a,9c,d6,61,af,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2c81e34222e8052573023a60d06dd016"=hex:ff,7c,85,e0,43,d4,0e,fe,f6,3c,e0,53,3a, 4d,14,c8,25,da,ec,7e,55,20,c9,26,93,01,85,40,1a,f3,9a,4c,ff,7c,85,e0,43,d4,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2582ae41fb52324423be06337561aa48"=hex:3e,1e,9e,e0,57,5a,93,61,51,fb,68,f1,8c, 5a,d7,6b,3e,1e,9e,e0,57,5a,93,61,3d,51,dc,c8,55,7d,73,d3,86,8c,21,01,be,91,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "caaeda5fd7a9ed7697d9686d4b818472"=hex:cd,44,cd,b9,a6,33,6c,cd,0d,55,9b,5b,57, 39,3b,b6,cd,44,cd,b9,a6,33,6c,cd,8c,e5,ab,42,96,39,3d,39,f5,1d,4d,73,a8,13,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:df,20,58,62,78,6b,cf,c8,67,0f,38,24,ed, 0e,82,4c,b0,18,ed,a7,3f,8d,37,a4,0a,bc,19,c6,02,97,25,cf,df,20,58,62,78,6b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,ca,39,17,e3,7c, ca,5a,1c,31,77,e1,ba,b1,f8,68,02,8f,4f,fe,d6,27,dc,63,48,fb,a7,78,e6,12,2f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,fe,f5,5c,e7,eb, da,87,cb,83,6c,56,8b,a0,85,96,ab,6d,fd,2d,05,76,a0,7f,28,01,3a,48,fc,e8,04,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:51,fa,6e,91,28,9e,14,cc,a3,70,2a,e4,5d, 0b,24,d1,51,fa,6e,91,28,9e,14,cc,4d,0d,3d,be,ef,65,24,a7,f6,0f,4e,58,98,5b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "f5f62a6129303efb32fbe080bb27835b"=hex:37,a4,aa,c3,a6,15,56,0a,16,6f,88,4b,f1, f8,6d,45,b1,cd,45,5a,a8,c4,f8,b9,a5,2b,5c,34,60,e7,1c,48,3d,ce,ea,26,2d,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:2a,b7,cc,b5,b9,7f,41,e7,d5,cc,3b,95,a7, 76,a5,4d,e3,0e,66,d5,eb,bc,2f,6b,95,e1,b4,5b,d1,38,bf,0a,2a,b7,cc,b5,b9,7f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "8a8aec57dd6508a385616fbc86791ec2"=hex:6c,43,2d,1e,aa,22,2f,9c,f6,9a,7e,56,6d, 0c,49,43,fa,ea,66,7f,d4,3b,6b,70,08,49,98,ef,21,af,6d,b3,6c,43,2d,1e,aa,22,\ . Voltooingstijd: 2009-03-30 9:38:08 ComboFix-quarantined-files.txt 2009-03-30 07:38:04 ComboFix4.txt 2009-03-29 11:54:10 ComboFix3.txt 2009-03-29 21:05:58 ComboFix2.txt 2009-03-30 06:54:00 Pre-Run: 32.837.402.624 bytes beschikbaar Post-Run: 32,823,607,296 bytes beschikbaar Current=2 Default=2 Failed=3 LastKnownGood=4 Sets=1,2,3,4 401 --- E O F --- 2009-02-11 23:15:10

Hier een log van HIJACK Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:32:54, on 29-3-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\imapi.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Thuishelp\Zesko\Thuishelp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Ziggo\Common\RaUI.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [Zesko_McciTrayApp] C:\Program Files\Thuishelp\Zesko\Thuishelp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Ziggo Wireless Utility.lnk = C:\Program Files\Ziggo\Common\RaUI.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/ O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://static.slide.com/uploader/SlideImageUploader.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1154163150359 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe -- End of file - 8671 bytes Hier een log van COMBOFIX ComboFix 09-03-29.02 - Rick Charles 2009-03-29 22:56:39.3 - FAT32x86 Gestart vanuit: c:\documents and settings\Rick Charles\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\Rick Charles\Bureaublad\CFScript.txt..txt * Resident AV is active FILE :: C:\FOUND.000 C:\FOUND.001 C:\FOUND.002 C:\FOUND.003 C:\FOUND.004 c:\windows\hpoins07.dat.temp c:\windows\hpomdl07.dat.temp c:\windows\system.tmp c:\windows\system32\CF21875.exe c:\windows\system32\SET812.tmp c:\windows\system32\SET813.tmp c:\windows\win.tmp . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\hpoins07.dat.temp c:\windows\hpomdl07.dat.temp c:\windows\system.tmp c:\windows\system32\CF21875.exe c:\windows\system32\SET812.tmp c:\windows\system32\SET813.tmp c:\windows\win.tmp . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_CTREDRV.SYS -------\Service_ctredrv.sys (((((((((((((((((((( Bestanden Gemaakt van 2009-02-28 to 2009-03-29 )))))))))))))))))))))))))))))) . 2009-03-25 21:59 . 2009-03-25 21:59 <DIR> d--hs---- C:\FOUND.004 2009-03-22 22:02 . 2009-03-22 22:02 <DIR> d-------- c:\program files\Error Repair Professional 2009-03-22 12:57 . 2009-03-22 12:57 <DIR> d-------- c:\program files\Ss-Tools 2009-03-22 12:42 . 2009-03-22 12:42 <DIR> d-------- c:\program files\RegScrubXP 2009-03-21 21:06 . 2009-03-21 21:06 <DIR> d-------- c:\program files\Free Window Registry Repair 2009-03-21 20:14 . 2009-03-21 20:14 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\ErrorFix 2009-03-21 18:37 . 2009-03-21 18:37 <DIR> d--hs---- C:\FOUND.003 2009-03-21 08:35 . 2009-03-21 08:35 <DIR> d--hs---- C:\FOUND.002 2009-03-21 07:05 . 2009-03-21 07:05 <DIR> d--hs---- C:\FOUND.001 2009-03-20 20:53 . 2009-03-20 20:53 <DIR> d--hs---- C:\FOUND.000 2009-03-20 18:42 . 2009-03-13 23:53 786,152 --a------ C:\SMS2003-SP1-KB888987-X86-ENU.exe 2009-03-17 23:10 . 2009-03-17 23:10 <DIR> dr------- C:\UDC Output Files 2009-03-16 19:30 . 2009-03-16 19:30 <DIR> d-------- c:\program files\Common Files\HP 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\program files\PC Drivers HeadQuarters 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2009-03-16 17:21 . 2009-03-16 17:21 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\GetRightToGo 2009-03-12 22:56 . 2009-03-12 22:56 <DIR> d-------- c:\program files\DENDA 2009-03-10 23:02 . 2009-03-10 23:02 <DIR> d-------- c:\program files\XP Repair Pro 2007 2009-03-10 20:32 . 2009-03-10 20:33 <DIR> d-------- c:\temp\HP_WebRelease 2009-03-09 12:00 . 2009-03-09 12:00 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\BoostXP2 2009-03-04 23:25 . 2009-03-04 23:25 <DIR> d-------- c:\program files\Systweak BoostXP2 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\program files\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\All Users\Application Data\DAEMON Tools Pro . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-03-11 15:36 410,984 ----a-w c:\windows\system32\deploytk.dll 2009-02-27 09:58 --------- d-----w c:\documents and settings\All Users\Application Data\Nero 2009-02-27 09:52 --------- d-----w c:\program files\Nero 2009-02-23 22:40 --------- d-----w c:\program files\Malwarebytes' Anti-Malware 2009-02-23 22:18 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Malwarebytes 2009-02-23 22:18 --------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes 2009-02-23 21:23 --------- d-----w c:\program files\Common Files\PC Tools 2009-02-23 21:03 --------- d-----w c:\program files\Trend Micro 2009-02-23 20:49 --------- d-----w c:\program files\Enigma Software Group 2009-02-23 10:26 351,275 ----a-w c:\windows\system32\rtcshares.exe 2009-02-21 10:19 --------- d-----w c:\program files\iColorFolder 2009-02-20 07:38 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Azureus 2009-02-20 07:38 --------- d-----w c:\documents and settings\All Users\Application Data\Azureus 2009-02-17 18:27 --------- d-----w c:\documents and settings\Rick Charles\Application Data\ImgBurn 2009-02-17 18:23 --------- d-----w c:\program files\ImgBurn 2009-02-17 17:20 --------- d-----w c:\documents and settings\Rick Charles\Application Data\ACD Systems 2009-02-17 17:19 --------- d-----w c:\program files\Common Files\ACD Systems 2009-02-17 17:19 --------- d-----w c:\documents and settings\All Users\Application Data\ACD Systems 2009-02-16 13:36 47,360 ----a-w c:\documents and settings\Rick Charles\Application Data\pcouffin.sys 2009-02-15 07:53 717,296 ----a-w c:\windows\system32\drivers\sptd.sys 2009-02-11 08:19 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys 2009-02-11 08:19 15,504 ----a-w c:\windows\system32\drivers\mbam.sys 2009-02-10 15:05 952,832 ----a-w c:\windows\system32\javac.exe 2009-02-09 19:32 --------- d-----w c:\documents and settings\All Users\Application Data\Vso 2009-02-09 19:29 47,360 ----a-w c:\windows\system32\drivers\pcouffin.sys 2009-02-09 19:29 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Vso 2009-02-09 19:28 --------- d-----w c:\program files\VSO 2009-02-09 11:47 --------- d-----w c:\program files\activePDF 2009-02-05 20:43 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Locktime 2009-02-05 20:42 --------- d-----w c:\documents and settings\All Users\Application Data\Locktime 2009-02-04 16:43 --------- d-----w c:\program files\Windows Live SkyDrive 2009-02-04 16:43 --------- d-----w c:\program files\Microsoft 2009-02-03 18:59 --------- d-----w c:\program files\Easy Computing 2009-02-03 17:16 --------- d-----w c:\program files\Common Files\Windows Live 2009-02-02 17:13 --------- d-----w c:\program files\The FilmMachine 2009-02-02 16:51 --------- d-----w c:\documents and settings\Rick Charles\Application Data\AVS4YOU 2009-02-02 16:51 --------- d-----w c:\documents and settings\All Users\Application Data\AVS4YOU 2009-02-02 16:43 --------- d-----w c:\program files\Common Files\AVSMedia 2009-02-02 16:43 --------- d-----w c:\program files\AVS4YOU 2009-02-02 09:48 --------- d-----w c:\program files\Pegasys Inc 2009-02-02 08:56 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Ahead 2009-02-02 08:42 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Uniblue 2009-02-02 08:35 --------- d-----w c:\documents and settings\All Users\Application Data\Ahead 2009-02-01 12:19 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Any Video Converter 2009-02-01 12:09 --------- d-----w c:\program files\Burn4Free Toolbar 2009-02-01 11:23 --------- d-----w c:\program files\VideoLAN 2009-02-01 11:17 --------- d-----w c:\documents and settings\Rick Charles\Application Data\CyberLink 2009-02-01 09:05 --------- d-----w c:\documents and settings\Rick Charles\Application Data\BitTorrent 2009-02-01 08:53 --------- d-----w c:\program files\BitTorrent 2009-02-01 08:53 --------- d-----w c:\documents and settings\Rick Charles\Application Data\DNA 2009-01-16 19:31 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll 2008-11-03 11:51 24,632 ----a-w c:\documents and settings\Rick Charles\Application Data\GDIPFONTCACHEV1.DAT 2004-08-04 03:00 94,784 --sh--w c:\windows\twain.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_16.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_32.dll 2008-04-14 17:02 50,688 --sh--w c:\windows\twain_32.dll 2008-04-14 17:02 343,040 --sha-w c:\windows\system32\msvcrt.dll 2008-04-14 17:02 84,992 --sha-w c:\windows\system32\olepro32.dll 2008-04-14 17:03 12,288 --sh--w c:\windows\system32\regsvr32.exe 2008-04-14 17:02 551,936 --sh--w c:\windows\system32\oleaut32.dll 2008-04-14 17:02 413,696 --sha-w c:\windows\system32\msvcp60.dll 2008-04-14 17:02 57,344 --sh--w c:\windows\system32\msvcirt.dll 2008-04-14 17:02 1,028,096 --sha-w c:\windows\system32\mfc42.dll 2008-09-26 07:33 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Geschiedenis\History.IE5\MSHist012008092620080927\index.dat . ((((((((((((((((((((((((((((( SnapShot@2009-03-29_13.50.27.62 ))))))))))))))))))))))))))))))))))))))))) . + 2005-10-20 18:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE + 2009-03-29 21:00:02 16,384 ----a-w c:\windows\Temp\Perflib_Perfdata_5f0.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-11-07 21633320] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-28 68856] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-02-01 342848] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-10-24 1451264] "Zesko_McciTrayApp"="c:\program files\Thuishelp\Zesko\Thuishelp.exe" [2008-04-14 1455104] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-11 148888] "AGRSMMSG"="AGRSMMSG.exe" [2005-03-04 c:\windows\AGRSMMSG.exe] "SoundMan"="SOUNDMAN.EXE" [2004-05-14 c:\windows\SOUNDMAN.EXE] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360] Ziggo Wireless Utility.lnk - c:\program files\Ziggo\Common\RaUI.exe [2009-01-21 647168] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.ACDV"= ACDV.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0SsiEfr.e [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2008-12-02 22:38 3882312 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2007-03-01 15:57 153136 c:\program files\Common Files\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\TinaSoft\\Easy Cafe Client\\client.exe"= "c:\\Program Files\\Messenger\\MSMSGS.EXE"= "c:\\Program Files\\SmartFTP\\SmartFTP.exe"= "c:\\StubInstaller.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6160:TCP"= 6160:TCP:Seagull Driver Networking R3 adiusbae;USB ADSL LAN Adapter; [x] R3 hitmanpro3;Hitman Pro 3 Support Driver; [x] R3 RTL8187B;Wireless Network USB Adapter 54g WL-168v1.004;c:\windows\system32\DRIVERS\RTL8187B.sys [2007-07-18 264576] S1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-10-24 34824] S2 BCMNTIO;BCMNTIO;c:\progra~1\CHECKIT\DIAGNO~1\BCMNTIO.sys [2004-03-05 3744] S2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-10-24 468224] S2 Esdpdx01;Esdpdx01;c:\windows\system32\Drivers\ESDPDX01.SYS [2003-01-19 95449] S2 MAPMEM;MAPMEM;c:\progra~1\CHECKIT\DIAGNO~1\MAPMEM.sys [2004-03-05 3904] S3 PAC207;Trust WB-1200p Mini Webcam;c:\windows\system32\DRIVERS\pfc027.sys [2005-02-24 162176] --- Andere Services/Drivers In Geheugen --- *Deregistered* - AegisP *Deregistered* - AFD *Deregistered* - ALG *Deregistered* - Aspi32 *Deregistered* - AudioSrv *Deregistered* - audstub *Deregistered* - BCMNTIO *Deregistered* - Beep *Deregistered* - Browser *Deregistered* - Cdfs *Deregistered* - CryptSvc *Deregistered* - DcomLaunch *Deregistered* - Dhcp *Deregistered* - Dnscache *Deregistered* - eamon *Deregistered* - easdrv *Deregistered* - ekrn *Deregistered* - epfwtdir *Deregistered* - ERSvc *Deregistered* - Esdpdx01 *Deregistered* - EventSystem *Deregistered* - Fastfat *Deregistered* - FastUserSwitchingCompatibility *Deregistered* - Fips *Deregistered* - FltMgr *Deregistered* - Ftdisk *Deregistered* - Gpc *Deregistered* - helpsvc *Deregistered* - HTTP *Deregistered* - HTTPFilter *Deregistered* - IpNat *Deregistered* - IPSec *Deregistered* - JavaQuickStarterService *Deregistered* - KSecDD *Deregistered* - lanmanserver *Deregistered* - lanmanworkstation *Deregistered* - LightScribeService *Deregistered* - LmHosts *Deregistered* - MAPMEM *Deregistered* - McciCMService *Deregistered* - MMRTKRNL *Deregistered* - mnmdd *Deregistered* - MountMgr *Deregistered* - MRxDAV *Deregistered* - MRxSmb *Deregistered* - Msfs *Deregistered* - mssmbios *Deregistered* - Mup *Deregistered* - NDIS *Deregistered* - NdisTapi *Deregistered* - NdisWan *Deregistered* - NDProxy *Deregistered* - NetBIOS *Deregistered* - NetBT *Deregistered* - Netman *Deregistered* - Nla *Deregistered* - Npfs *Deregistered* - Null *Deregistered* - PartMgr *Deregistered* - ParVdm *Deregistered* - PCIIde *Deregistered* - Pml Driver HPZ12 *Deregistered* - PolicyAgent *Deregistered* - PptpMiniport *Deregistered* - ProtectedStorage *Deregistered* - PSched *Deregistered* - RasAcd *Deregistered* - Rasl2tp *Deregistered* - RasPppoe *Deregistered* - Raspti *Deregistered* - Rdbss *Deregistered* - RDPCDD *Deregistered* - RpcSs *Deregistered* - SamSs *Deregistered* - Schedule *Deregistered* - seclogon *Deregistered* - SENS *Deregistered* - SharedAccess *Deregistered* - ShellHWDetection *Deregistered* - sisidex *Deregistered* - Spooler *Deregistered* - sptd *Deregistered* - sr *Deregistered* - srservice *Deregistered* - Srv *Deregistered* - SSDPSRV *Deregistered* - STI Simulator *Deregistered* - stisvc *Deregistered* - swenum *Deregistered* - Tcpip *Deregistered* - TermDD *Deregistered* - TermService *Deregistered* - Themes *Deregistered* - TrkWks *Deregistered* - Update *Deregistered* - upnphost *Deregistered* - VgaSave *Deregistered* - VolSnap *Deregistered* - W32Time *Deregistered* - Wanarp *Deregistered* - WebClient *Deregistered* - winmgmt *Deregistered* - WMPNetworkSvc *Deregistered* - wscsvc *Deregistered* - wuauserv . Inhoud van de 'Gedeelde Taken' map 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix\ErrorFix.exe [] 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix [] . . ------- Bijkomende Scan ------- . uStart Page = Google uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 Trusted Zone: ziggo.nl\thuishelp FF - ProfilePath - c:\documents and settings\Rick Charles\Application Data\Mozilla\Firefox\Profiles\9p24h9y2.default\ FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll . ************************************************************************** catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-03-29 23:04:05 Windows 5.1.2600 Service Pack 3 FAT NTAPI scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\S-1-5-21-4070995279-1538417202-2915903831-1008\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,42,50,bf,99,fa, 30,c1,61,c8,28,51,af,b0,29,a3,98,a2,9e,03,09,e9,76,f6,f2,e2,63,26,f1,3f,c8,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "bca643cdc5c2726b20d2ecedcc62c59b"=hex:6a,9c,d6,61,af,45,84,18,c8,66,6a,d7,5e, 03,9a,91,71,3b,04,66,8b,46,0d,96,d2,3c,51,3d,7c,27,4d,68,6a,9c,d6,61,af,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2c81e34222e8052573023a60d06dd016"=hex:ff,7c,85,e0,43,d4,0e,fe,f6,3c,e0,53,3a, 4d,14,c8,25,da,ec,7e,55,20,c9,26,93,01,85,40,1a,f3,9a,4c,ff,7c,85,e0,43,d4,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2582ae41fb52324423be06337561aa48"=hex:3e,1e,9e,e0,57,5a,93,61,51,fb,68,f1,8c, 5a,d7,6b,3e,1e,9e,e0,57,5a,93,61,3d,51,dc,c8,55,7d,73,d3,86,8c,21,01,be,91,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "caaeda5fd7a9ed7697d9686d4b818472"=hex:cd,44,cd,b9,a6,33,6c,cd,0d,55,9b,5b,57, 39,3b,b6,cd,44,cd,b9,a6,33,6c,cd,8c,e5,ab,42,96,39,3d,39,f5,1d,4d,73,a8,13,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:df,20,58,62,78,6b,cf,c8,67,0f,38,24,ed, 0e,82,4c,b0,18,ed,a7,3f,8d,37,a4,0a,bc,19,c6,02,97,25,cf,df,20,58,62,78,6b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,ca,39,17,e3,7c, ca,5a,1c,31,77,e1,ba,b1,f8,68,02,8f,4f,fe,d6,27,dc,63,48,fb,a7,78,e6,12,2f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,fe,f5,5c,e7,eb, da,87,cb,83,6c,56,8b,a0,85,96,ab,6d,fd,2d,05,76,a0,7f,28,01,3a,48,fc,e8,04,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:51,fa,6e,91,28,9e,14,cc,a3,70,2a,e4,5d, 0b,24,d1,51,fa,6e,91,28,9e,14,cc,4d,0d,3d,be,ef,65,24,a7,f6,0f,4e,58,98,5b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "f5f62a6129303efb32fbe080bb27835b"=hex:37,a4,aa,c3,a6,15,56,0a,16,6f,88,4b,f1, f8,6d,45,b1,cd,45,5a,a8,c4,f8,b9,a5,2b,5c,34,60,e7,1c,48,3d,ce,ea,26,2d,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:2a,b7,cc,b5,b9,7f,41,e7,d5,cc,3b,95,a7, 76,a5,4d,e3,0e,66,d5,eb,bc,2f,6b,95,e1,b4,5b,d1,38,bf,0a,2a,b7,cc,b5,b9,7f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "8a8aec57dd6508a385616fbc86791ec2"=hex:6c,43,2d,1e,aa,22,2f,9c,f6,9a,7e,56,6d, 0c,49,43,fa,ea,66,7f,d4,3b,6b,70,08,49,98,ef,21,af,6d,b3,6c,43,2d,1e,aa,22,\ . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\JAVA\JRE6\BIN\JQS.EXE c:\program files\COMMON FILES\LIGHTSCRIBE\LSSRVC.EXE c:\program files\COMMON FILES\MOTIVE\MCCICMSERVICE.EXE c:\windows\SYSTEM32\HPZIPM12.EXE c:\windows\SYSTEM32\PASTISVC.EXE c:\windows\SYSTEM32\WGATRAY.EXE . ************************************************************************** . Voltooingstijd: 2009-03-29 23:05:55 - machine werd herstart ComboFix-quarantined-files.txt 2009-03-29 21:05:52 ComboFix2.txt 2009-03-29 11:54:10 Pre-Run: 32.906.313.728 bytes beschikbaar Post-Run: 32,801,357,824 bytes beschikbaar Current=2 Default=2 Failed=3 LastKnownGood=4 Sets=1,2,3,4 423 --- E O F --- 2009-02-11 23:15:10

Bij deze het logje.... ComboFix 09-03-28.06 - Rick Charles 2009-03-29 13:51:15.2 - FAT32x86 Gestart vanuit: c:\documents and settings\Rick Charles\Bureaublad\ComboFix.exe . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Voorgaande Run ------- . c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat c:\documents and settings\Rick Charles\Application Data\inst.exe c:\documents and settings\Rick Charles\new.txt c:\program files\Common Files\{320D1~1 c:\program files\Common Files\System\Uninstall c:\windows\search_res.txt . (((((((((((((((((((( Bestanden Gemaakt van 2009-02-28 to 2009-03-29 )))))))))))))))))))))))))))))) . 2009-03-29 13:46 . 2009-03-29 13:44 399,872 --a------ c:\windows\system32\CF21875.exe 2009-03-25 21:59 . 2009-03-25 21:59 <DIR> d--hs---- C:\FOUND.004 2009-03-22 22:02 . 2009-03-22 22:02 <DIR> d-------- c:\program files\Error Repair Professional 2009-03-22 12:57 . 2009-03-22 12:57 <DIR> d-------- c:\program files\Ss-Tools 2009-03-22 12:42 . 2009-03-22 12:42 <DIR> d-------- c:\program files\RegScrubXP 2009-03-21 21:06 . 2009-03-21 21:06 <DIR> d-------- c:\program files\Free Window Registry Repair 2009-03-21 20:14 . 2009-03-21 20:14 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\ErrorFix 2009-03-21 18:37 . 2009-03-21 18:37 <DIR> d--hs---- C:\FOUND.003 2009-03-21 08:35 . 2009-03-21 08:35 <DIR> d--hs---- C:\FOUND.002 2009-03-21 07:05 . 2009-03-21 07:05 <DIR> d--hs---- C:\FOUND.001 2009-03-20 20:53 . 2009-03-20 20:53 <DIR> d--hs---- C:\FOUND.000 2009-03-20 18:42 . 2009-03-13 23:53 786,152 --a------ C:\SMS2003-SP1-KB888987-X86-ENU.exe 2009-03-17 23:10 . 2009-03-17 23:10 <DIR> dr------- C:\UDC Output Files 2009-03-16 19:30 . 2009-03-16 19:30 <DIR> d-------- c:\program files\Common Files\HP 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\program files\PC Drivers HeadQuarters 2009-03-16 17:23 . 2009-03-16 17:23 <DIR> d-------- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2009-03-16 17:21 . 2009-03-16 17:21 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\GetRightToGo 2009-03-12 22:56 . 2009-03-12 22:56 <DIR> d-------- c:\program files\DENDA 2009-03-10 23:02 . 2009-03-10 23:02 <DIR> d-------- c:\program files\XP Repair Pro 2007 2009-03-10 20:43 . 2006-08-01 13:04 112,450 --------- c:\windows\hpoins07.dat.temp 2009-03-10 20:43 . 2005-05-24 08:50 21,124 --------- c:\windows\hpomdl07.dat.temp 2009-03-10 20:32 . 2009-03-10 20:33 <DIR> d-------- c:\temp\HP_WebRelease 2009-03-09 12:26 . 2009-03-16 19:30 1,418 --a------ c:\windows\win.tmp 2009-03-09 12:00 . 2009-03-09 12:00 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\BoostXP2 2009-03-09 05:36 . 2008-04-14 19:03 6,144 --a------ c:\windows\system32\SET813.tmp 2009-03-09 05:36 . 2008-04-14 19:02 5,120 --a------ c:\windows\system32\SET812.tmp 2009-03-04 23:25 . 2009-03-04 23:25 <DIR> d-------- c:\program files\Systweak BoostXP2 2009-03-04 22:34 . 2005-05-26 13:46 231 --a------ c:\windows\system.tmp 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\program files\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\Rick Charles\Application Data\DAEMON Tools Pro 2009-03-02 09:16 . 2009-03-02 09:16 <DIR> d-------- c:\documents and settings\All Users\Application Data\DAEMON Tools Pro . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-03-11 15:36 410,984 ----a-w c:\windows\system32\deploytk.dll 2009-02-27 09:58 --------- d-----w c:\documents and settings\All Users\Application Data\Nero 2009-02-27 09:52 --------- d-----w c:\program files\Nero 2009-02-23 22:40 --------- d-----w c:\program files\Malwarebytes' Anti-Malware 2009-02-23 22:18 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Malwarebytes 2009-02-23 22:18 --------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes 2009-02-23 21:23 --------- d-----w c:\program files\Common Files\PC Tools 2009-02-23 21:03 --------- d-----w c:\program files\Trend Micro 2009-02-23 20:49 --------- d-----w c:\program files\Enigma Software Group 2009-02-23 10:26 351,275 ----a-w c:\windows\system32\rtcshares.exe 2009-02-21 10:19 --------- d-----w c:\program files\iColorFolder 2009-02-20 07:38 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Azureus 2009-02-20 07:38 --------- d-----w c:\documents and settings\All Users\Application Data\Azureus 2009-02-17 18:27 --------- d-----w c:\documents and settings\Rick Charles\Application Data\ImgBurn 2009-02-17 18:23 --------- d-----w c:\program files\ImgBurn 2009-02-17 17:20 --------- d-----w c:\documents and settings\Rick Charles\Application Data\ACD Systems 2009-02-17 17:19 --------- d-----w c:\program files\Common Files\ACD Systems 2009-02-17 17:19 --------- d-----w c:\documents and settings\All Users\Application Data\ACD Systems 2009-02-16 13:36 47,360 ----a-w c:\documents and settings\Rick Charles\Application Data\pcouffin.sys 2009-02-15 07:53 717,296 ----a-w c:\windows\system32\drivers\sptd.sys 2009-02-11 08:19 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys 2009-02-11 08:19 15,504 ----a-w c:\windows\system32\drivers\mbam.sys 2009-02-10 15:05 952,832 ----a-w c:\windows\system32\javac.exe 2009-02-09 19:32 --------- d-----w c:\documents and settings\All Users\Application Data\Vso 2009-02-09 19:29 47,360 ----a-w c:\windows\system32\drivers\pcouffin.sys 2009-02-09 19:29 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Vso 2009-02-09 19:28 --------- d-----w c:\program files\VSO 2009-02-09 11:47 --------- d-----w c:\program files\activePDF 2009-02-05 20:43 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Locktime 2009-02-05 20:42 --------- d-----w c:\documents and settings\All Users\Application Data\Locktime 2009-02-04 16:43 --------- d-----w c:\program files\Windows Live SkyDrive 2009-02-04 16:43 --------- d-----w c:\program files\Microsoft 2009-02-03 18:59 --------- d-----w c:\program files\Easy Computing 2009-02-03 17:16 --------- d-----w c:\program files\Common Files\Windows Live 2009-02-02 17:13 --------- d-----w c:\program files\The FilmMachine 2009-02-02 16:51 --------- d-----w c:\documents and settings\Rick Charles\Application Data\AVS4YOU 2009-02-02 16:51 --------- d-----w c:\documents and settings\All Users\Application Data\AVS4YOU 2009-02-02 16:43 --------- d-----w c:\program files\Common Files\AVSMedia 2009-02-02 16:43 --------- d-----w c:\program files\AVS4YOU 2009-02-02 09:48 --------- d-----w c:\program files\Pegasys Inc 2009-02-02 08:56 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Ahead 2009-02-02 08:42 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Uniblue 2009-02-02 08:35 --------- d-----w c:\documents and settings\All Users\Application Data\Ahead 2009-02-01 12:19 --------- d-----w c:\documents and settings\Rick Charles\Application Data\Any Video Converter 2009-02-01 12:09 --------- d-----w c:\program files\Burn4Free Toolbar 2009-02-01 11:23 --------- d-----w c:\program files\VideoLAN 2009-02-01 11:17 --------- d-----w c:\documents and settings\Rick Charles\Application Data\CyberLink 2009-02-01 09:05 --------- d-----w c:\documents and settings\Rick Charles\Application Data\BitTorrent 2009-02-01 08:53 --------- d-----w c:\program files\BitTorrent 2009-02-01 08:53 --------- d-----w c:\documents and settings\Rick Charles\Application Data\DNA 2009-01-16 19:31 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll 2008-11-03 11:51 24,632 ----a-w c:\documents and settings\Rick Charles\Application Data\GDIPFONTCACHEV1.DAT 2004-08-04 03:00 94,784 --sh--w c:\windows\twain.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_16.dll 2004-07-29 22:04 1,216 --sh--w c:\windows\Twunk_32.dll 2008-04-14 17:02 50,688 --sh--w c:\windows\twain_32.dll 2008-04-14 17:02 343,040 --sha-w c:\windows\system32\msvcrt.dll 2008-04-14 17:02 84,992 --sha-w c:\windows\system32\olepro32.dll 2008-04-14 17:03 12,288 --sh--w c:\windows\system32\regsvr32.exe 2008-04-14 17:02 551,936 --sh--w c:\windows\system32\oleaut32.dll 2008-04-14 17:02 413,696 --sha-w c:\windows\system32\msvcp60.dll 2008-04-14 17:02 57,344 --sh--w c:\windows\system32\msvcirt.dll 2008-04-14 17:02 1,028,096 --sha-w c:\windows\system32\mfc42.dll 2008-09-26 07:33 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Geschiedenis\History.IE5\MSHist012008092620080927\index.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-11-07 21633320] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-28 68856] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-02-01 342848] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-10-24 1451264] "Zesko_McciTrayApp"="c:\program files\Thuishelp\Zesko\Thuishelp.exe" [2008-04-14 1455104] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-11 148888] "AGRSMMSG"="AGRSMMSG.exe" [2005-03-04 c:\windows\AGRSMMSG.exe] "SoundMan"="SOUNDMAN.EXE" [2004-05-14 c:\windows\SOUNDMAN.EXE] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360] Ziggo Wireless Utility.lnk - c:\program files\Ziggo\Common\RaUI.exe [2009-01-21 647168] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.ACDV"= ACDV.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0SsiEfr.e [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2008-12-02 22:38 3882312 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2007-03-01 15:57 153136 c:\program files\Common Files\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\TinaSoft\\Easy Cafe Client\\client.exe"= "c:\\Program Files\\Messenger\\MSMSGS.EXE"= "c:\\Program Files\\SmartFTP\\SmartFTP.exe"= "c:\\StubInstaller.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6160:TCP"= 6160:TCP:Seagull Driver Networking R1 ctredrv.sys;ctredrv.sys; [x] R3 adiusbae;USB ADSL LAN Adapter; [x] R3 hitmanpro3;Hitman Pro 3 Support Driver; [x] R3 RTL8187B;Wireless Network USB Adapter 54g WL-168v1.004;c:\windows\system32\DRIVERS\RTL8187B.sys [2007-07-18 264576] S1 epfwtdir;epfwtdir;c:\windows\system32\DRIVERS\epfwtdir.sys [2008-10-24 34824] S2 BCMNTIO;BCMNTIO;c:\progra~1\CHECKIT\DIAGNO~1\BCMNTIO.sys [2004-03-05 3744] S2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-10-24 468224] S2 Esdpdx01;Esdpdx01;c:\windows\system32\Drivers\ESDPDX01.SYS [2003-01-19 95449] S2 MAPMEM;MAPMEM;c:\progra~1\CHECKIT\DIAGNO~1\MAPMEM.sys [2004-03-05 3904] S3 PAC207;Trust WB-1200p Mini Webcam;c:\windows\system32\DRIVERS\pfc027.sys [2005-02-24 162176] --- Andere Services/Drivers In Geheugen --- *Deregistered* - AegisP *Deregistered* - AFD *Deregistered* - ALG *Deregistered* - Aspi32 *Deregistered* - AudioSrv *Deregistered* - audstub *Deregistered* - BCMNTIO *Deregistered* - Beep *Deregistered* - Browser *Deregistered* - Cdfs *Deregistered* - CryptSvc *Deregistered* - DcomLaunch *Deregistered* - Dhcp *Deregistered* - Dnscache *Deregistered* - eamon *Deregistered* - easdrv *Deregistered* - ekrn *Deregistered* - epfwtdir *Deregistered* - ERSvc *Deregistered* - Esdpdx01 *Deregistered* - EventSystem *Deregistered* - Fastfat *Deregistered* - FastUserSwitchingCompatibility *Deregistered* - Fips *Deregistered* - FltMgr *Deregistered* - Ftdisk *Deregistered* - Gpc *Deregistered* - gusvc *Deregistered* - helpsvc *Deregistered* - HTTP *Deregistered* - HTTPFilter *Deregistered* - ImapiService *Deregistered* - IpNat *Deregistered* - IPSec *Deregistered* - JavaQuickStarterService *Deregistered* - KSecDD *Deregistered* - lanmanserver *Deregistered* - lanmanworkstation *Deregistered* - LightScribeService *Deregistered* - LmHosts *Deregistered* - MAPMEM *Deregistered* - McciCMService *Deregistered* - MMRTKRNL *Deregistered* - mnmdd *Deregistered* - MountMgr *Deregistered* - MRxDAV *Deregistered* - MRxSmb *Deregistered* - Msfs *Deregistered* - mssmbios *Deregistered* - Mup *Deregistered* - NDIS *Deregistered* - NdisTapi *Deregistered* - NdisWan *Deregistered* - NDProxy *Deregistered* - NetBIOS *Deregistered* - NetBT *Deregistered* - Netman *Deregistered* - Nla *Deregistered* - NMIndexingService *Deregistered* - Npfs *Deregistered* - Null *Deregistered* - PartMgr *Deregistered* - ParVdm *Deregistered* - PCIIde *Deregistered* - Pml Driver HPZ12 *Deregistered* - PolicyAgent *Deregistered* - PptpMiniport *Deregistered* - ProtectedStorage *Deregistered* - PSched *Deregistered* - RasAcd *Deregistered* - Rasl2tp *Deregistered* - RasMan *Deregistered* - RasPppoe *Deregistered* - Raspti *Deregistered* - Rdbss *Deregistered* - RDPCDD *Deregistered* - RpcSs *Deregistered* - SamSs *Deregistered* - Schedule *Deregistered* - seclogon *Deregistered* - SENS *Deregistered* - SharedAccess *Deregistered* - ShellHWDetection *Deregistered* - sisidex *Deregistered* - Spooler *Deregistered* - sptd *Deregistered* - sr *Deregistered* - srservice *Deregistered* - Srv *Deregistered* - SSDPSRV *Deregistered* - STI Simulator *Deregistered* - stisvc *Deregistered* - swenum *Deregistered* - TapiSrv *Deregistered* - Tcpip *Deregistered* - TermDD *Deregistered* - TermService *Deregistered* - Themes *Deregistered* - TrkWks *Deregistered* - Update *Deregistered* - upnphost *Deregistered* - VgaSave *Deregistered* - VolSnap *Deregistered* - W32Time *Deregistered* - Wanarp *Deregistered* - WebClient *Deregistered* - winmgmt *Deregistered* - WMPNetworkSvc *Deregistered* - wscsvc . Inhoud van de 'Gedeelde Taken' map 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix\ErrorFix.exe [] 2009-03-29 c:\windows\Tasks\ErrorFix Scan.job - c:\program files\ErrorFix [] . - - - - ORPHANS VERWIJDERD - - - - WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file) . ------- Bijkomende Scan ------- . uStart Page = Google uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 Trusted Zone: ziggo.nl\thuishelp FF - ProfilePath - c:\documents and settings\Rick Charles\Application Data\Mozilla\Firefox\Profiles\9p24h9y2.default\ FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-03-29 13:52:55 Windows 5.1.2600 Service Pack 3 FAT NTAPI scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\S-1-5-21-4070995279-1538417202-2915903831-1008\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,42,50,bf,99,fa, 30,c1,61,c8,28,51,af,b0,29,a3,98,a2,9e,03,09,e9,76,f6,f2,e2,63,26,f1,3f,c8,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "bca643cdc5c2726b20d2ecedcc62c59b"=hex:6a,9c,d6,61,af,45,84,18,c8,66,6a,d7,5e, 03,9a,91,71,3b,04,66,8b,46,0d,96,d2,3c,51,3d,7c,27,4d,68,6a,9c,d6,61,af,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2c81e34222e8052573023a60d06dd016"=hex:ff,7c,85,e0,43,d4,0e,fe,f6,3c,e0,53,3a, 4d,14,c8,25,da,ec,7e,55,20,c9,26,93,01,85,40,1a,f3,9a,4c,ff,7c,85,e0,43,d4,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "2582ae41fb52324423be06337561aa48"=hex:3e,1e,9e,e0,57,5a,93,61,51,fb,68,f1,8c, 5a,d7,6b,3e,1e,9e,e0,57,5a,93,61,3d,51,dc,c8,55,7d,73,d3,86,8c,21,01,be,91,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "caaeda5fd7a9ed7697d9686d4b818472"=hex:cd,44,cd,b9,a6,33,6c,cd,0d,55,9b,5b,57, 39,3b,b6,cd,44,cd,b9,a6,33,6c,cd,8c,e5,ab,42,96,39,3d,39,f5,1d,4d,73,a8,13,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:df,20,58,62,78,6b,cf,c8,67,0f,38,24,ed, 0e,82,4c,b0,18,ed,a7,3f,8d,37,a4,0a,bc,19,c6,02,97,25,cf,df,20,58,62,78,6b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,ca,39,17,e3,7c, ca,5a,1c,31,77,e1,ba,b1,f8,68,02,8f,4f,fe,d6,27,dc,63,48,fb,a7,78,e6,12,2f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,fe,f5,5c,e7,eb, da,87,cb,83,6c,56,8b,a0,85,96,ab,6d,fd,2d,05,76,a0,7f,28,01,3a,48,fc,e8,04,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:51,fa,6e,91,28,9e,14,cc,a3,70,2a,e4,5d, 0b,24,d1,51,fa,6e,91,28,9e,14,cc,4d,0d,3d,be,ef,65,24,a7,f6,0f,4e,58,98,5b,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "f5f62a6129303efb32fbe080bb27835b"=hex:37,a4,aa,c3,a6,15,56,0a,16,6f,88,4b,f1, f8,6d,45,b1,cd,45,5a,a8,c4,f8,b9,a5,2b,5c,34,60,e7,1c,48,3d,ce,ea,26,2d,45,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:2a,b7,cc,b5,b9,7f,41,e7,d5,cc,3b,95,a7, 76,a5,4d,e3,0e,66,d5,eb,bc,2f,6b,95,e1,b4,5b,d1,38,bf,0a,2a,b7,cc,b5,b9,7f,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*] "ThreadingModel"="Apartment" @="c:\\WINDOWS\\system32\\OLE32.DLL" "8a8aec57dd6508a385616fbc86791ec2"=hex:6c,43,2d,1e,aa,22,2f,9c,f6,9a,7e,56,6d, 0c,49,43,fa,ea,66,7f,d4,3b,6b,70,08,49,98,ef,21,af,6d,b3,6c,43,2d,1e,aa,22,\ . Voltooingstijd: 2009-03-29 13:54:08 ComboFix-quarantined-files.txt 2009-03-29 11:54:06 Pre-Run: 32,960,479,232 bytes beschikbaar Post-Run: 32,944,750,592 bytes beschikbaar Current=2 Default=2 Failed=3 LastKnownGood=4 Sets=1,2,3,4 404 --- E O F --- 2009-02-11 23:15:10

Hey, Bij deze de hijack log-file nadat ik de stappen heb gevolgd! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:43:11, on 29-3-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\imapi.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Thuishelp\Zesko\Thuishelp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\Ziggo\Common\RaUI.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [Zesko_McciTrayApp] C:\Program Files\Thuishelp\Zesko\Thuishelp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Ziggo Wireless Utility.lnk = C:\Program Files\Ziggo\Common\RaUI.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/ O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://static.slide.com/uploader/SlideImageUploader.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1154163150359 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe -- End of file - 8642 bytes Hij blijft nog erg traag :-(

Hey, Bedankt voor de snelle reactie. Malware heb ik gedaan, maar niks gevonden...hijack heb ik net gedaan en zie hier het resultaat.... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:12:03, on 29-3-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\imapi.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Thuishelp\Zesko\Thuishelp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\Ziggo\Common\RaUI.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {D528386A-A286-4697-9C9C-47856CCD7F67} - (no file) O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [Zesko_McciTrayApp] C:\Program Files\Thuishelp\Zesko\Thuishelp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" (User '?') O4 - HKUS\S-1-5-21-4070995279-1538417202-2915903831-1008\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Ziggo Wireless Utility.lnk = C:\Program Files\Ziggo\Common\RaUI.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/ O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://static.slide.com/uploader/SlideImageUploader.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1154163150359 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Planner voor Automatische LiveUpdate - VSO Software - (no file) O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe -- End of file - 9271 bytes Groetjes, Rick

Hallo allemaal, Dit is de eerste keer dat ik een probleem post en ik hoop dat jullie mij kunnen helpen! ;-) Mijn computer die op Xp draait, start de laatste tijd erg langzaam op :-( Hij doet er bijna 15 minuten over om alles te laden en blijft soms hangen als ik een programma wil openen, de ene keer is ie snel met openen en de andere keer duurt het wel 5 a 10 minuten om een bijv: een WORD document te openen of iets anders. Weten jullie misschien wat er aan de hand is?? Ik hoop dat jullie misschien mij kunnen helpen!! Groetjes, Rick